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(57) Abstract 

A method and apparatus for descranibiing a ietevisioo signal using a three tier encryption technique for the code 
■used to descrambie the signal. At the transmitter, a distribution key (41) is used to encrypt a session key. The encrypted ses- 
sion key (40. i) is transmitted in the digital data channel (40) of the television signal. The session key is also used to encrypt 
the descrambie code (40.2) which is also transjnitted in the data channel (40) of the television signal. At the receiver (42) 
the encrypted session key (43) is decrypted using a distribution key (41). The decrypted session key (43), is in turn used to 
decrypt the descrambie code (44). The descrambie code may then be used to descrambie and/or decrypt other sigziais (45, 
46, 47) in the receiver. 
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METHOD AND APPARATUS FOR SCRAMBLING 
AND DESCRAMBLING TELEVISION SIGNALS 

BACKGROUND OF THF mVENTION 

oommJLL''''r «-«^any to the field of 

sufascpfption television system. television signals in a 



«.t Of alT ™ m P"*"-"""* p„5,ie. However, 

tosi or a good quality system is M&h nnv..- 

ensure an adeouat* « ,7 ' '^^^^ to 

of th. 1 broadcaster for maintenance 

of the system. Toward that end. manv bm-rfo-.f-- w 

scrambling the broadcast si™ i \ ^^<>^^^^stBrs have turned to 

tha service. Only subscribe, tl Th T"*"' '^^^ ^^^^^ 

-coder for .esclC hJ si^naf -r^^^^^^^^ "^""^ « 
de.ip,ed so that the signal is desl^Jled oTy " --^^^^ 



aooount Is In good standing. '''^""'"^ '^"'^ subscriber's 

tele.^!"' "^^'^'^ apparatus rely on the fact that 

television signals are produced «d displayed as a re«uU r , 
-a.„ln, process. picture MformatilTs slned ^ T prl^ 

.ve series Of hori.ontaI lines .hieh are transmitted sequential 

time. The transmitted slg«ai is « ^or.tin..«.. , 
brightness intensity ^orresoo^dsl ! ^ of the 

«s.i£y corresponding: to each point of the line <!.mh « 

urms »h,«l, „d.o mformation is traxsmltted) are separated by a 
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period In which no video information is transmitted. This latter period 
is known as the horizontal line blanking interval and is introduced to 
allow the scanning device in the television receiver to reset to the 

line-start position. 

In typical color television signals, the active line period includes 
one signal which simultaneously represents the instantaneous values of 
three independent color components. The method by which the three 
color components are coded into one signal Is standardised throughout 
North America, Canada and Japan. This method Is known as the 
NTSC standard. Alternative standards known as PAL and SECAM have 
been adopted in other countries but these standards have the same 
basic format as the NTSC standard, including a line blanking interval 
and an active line period in each scan line. 

Other types of analogue video signals which are particularly 
adapted for transmission by satellite and cable, and which lead to 
improved picture quality in comparison with existing standards, are 
presently being studied. Such signals are of particular importance to 
the subscription television field and are based on a time multiplex of 
the three independent color components during the active line periods 
of the scan line. Instead of coding the three components into one 
sigtal using the NTSC, PAL or SECAM - standard, the components are 
converted to digital form and sent sequentially using a time- 
eompressioi technique. One version of this type of signal is known as 
Multiplexed Analogue Components (MAC). Signals generated by a time 
compression technique also adhere to the same basic format as the 
NTSC, PAL and SECAM standards, including the presence of a line 
blanking interval and an active line period in each scan line. When a 
MAC signal is employed, digital data may be transmitted during the 
line blankinf interval as shown by the dotted lines in Figur® 2. Thus,. 
the audio portion of the signal may be converted to digital form and 
transmitted during the line blanking interval as digital data. 
Accordingly, the line blanking interval is ofter referred to as the "data 
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ehanneF and can include several multiplexed data signals. The eolor 
components, audio signals and any signals in the data channel can be 
collectively referred to as the intelligence portion of the television 
signal. 

In scrambling: a television signal, selected parameters of the ana- 
logue video components of the signal are modified in accordance with 
pseudo-random scrambling codes. The codes can be signaled to the 
television receiver in the data channel of the signal and are used by a 
decoder at the receiver to descramble the video components for 
reconstruction to the appropriate format for viewing. The data 
channel may also be securely encrypted to further frustrate reception 
of the signal by unauthorized persons. 

Though the terms "encryption" and ."scrambling," and their 
converse "decryption" and "desera mbling," are often used 
interchangeably, there is a distinction between them. Encryption and 
decryption are applied to digital data signals and scrambling and 
descrambling are applied to analogue signals. This distinction is drawn 
because of the fundamental difference between digit&l and analogue 
signals. Digital signals are defined at the bit level where each bit is 
independent of Its ?^ei^bonng bits. Any encoding, transformation or 
in^rersion of ths data bits which snake up the signal does not affect 
the signaFs transmission characteristics at the bit leveL Thus, an 
encrypted digital signal contains all of the information present In the 
original signal and may be precisely restored to the original signal by 
decryption. Analogue signals, on the other hand, cannot be modified 
or changed without affecting their transmission characteristics. For 
example, changing the value of a point on the waveform of an ana- 
logue signal without reference to neighboring points on the waveform 
increases the bandwidth of the signal. Thus, the modified signal 
requires a wider bandwidth for accurate transmission. Therefore when 
scrambling an analogue signal, parameters must be selected which 
result in the least amount of change in transmission characteristics of 
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Hiiiii®f@us methods m&y bg used t© serambl® a Me^slon 
by modifying the analogue eolor eomponents of the signals Such 
ineiade modifying the aniplityd® of tht e^mponents, 
e time at whieh tlie color eosnponents ar® transmitted and 
modifying both the amplitode mnd transmission time ©f the eolor com- 
ponents. Each modlficsation is, of course, done In aesordsnce with a 
prescribed pattern which may be transfnltted to the raeelver In the 

« vision signal by modifying the time at which the color components 
are transmitted is disclosed in commonly assigned U.S. Patent Appli- 
cation Serial No. 507,7«5 entitled "Encryption and Decryption (Scram- 
bling and Descrambling) of Video Signals" filed June 24, 1983. Said 
application is incorporated herein by reference. The eolor components 
could also be encrypted while being converted to digital form for 
time-compressed transmission, as for example in a MAC television 

U.S. Patent Application Serial No. 736J01 entitled "Method and 
Apparatus for Creating Encrypted and Decrypted Television Signals" 
filed May 21, 1985. This application is also Incorporated herein by 
reference. Moreover, the audio component of the television signal can 

be scrambled lit its analogue form or can I 

enwfpted &m truMrsiitted iss the «kta share 

!n typical raerj^tlon systems, the bit configuration of the digital 

data signal to be enierypted Is modified aecordlng to a pattern which 
Is determined at the transmitter. Tlie pattera generally Is a member 
of a large class of similar patteras mch that diseovery of the pattern 
through exhaustive search Is extremely unlike!;^, A precise description 
of the pattern used for encryption Is delivered to a decoder in desig- 
isated reetivera which then Is able to recover the original distribution. 
The deserlptloR of the pattern m known In the art as the ^encryption 
key« and the process of Informing designated users of the eneryption 
key, or more appropriately the "decryption key," is known as "key 
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distribution." The decryption tev f. • 

form. ^® ^ returned to its original 

secure ITIZTZ'^\::: ^" for the 

--t for certain algorithm, w;icl eTc t! 7T '""'^ ^^--"^ 

decryption sufficient for the data cha ^^^^ encryption and 

such algorithm which has gained aee T ^ ^elsvlsron signal. One 
is the Data Encryption Standard (n'^^s ^^'""^ ^« 

Bureau of stan.a... Otht aLori h '''' ^^^'-^^ 

requirement being that the data char„eTL*'' '''' 

decrypt in the absence of the decrv«H ! '""^""^"^ impossible to 
cwcryptlon key. 
Smca an encrypted data channel co„t.l„i . 

for the color components of « f«i , / containing descrantbling codes 

information as Ln L " ^"^ P^^'^aps audio 

the ..ver:fr:~ 

the Channel must be common to 2 ! " ^-^.y^tlng 

decryption key, however, requires th«. ^ ^^^'^^^^ 

Circulation of the dec yp^L 1 T'" '""''^^ ^^^"^ 
the system or to subscriirs l! subscribers to 

»SV^^mjNVI^^ - not presently in good standing. 

" '^^^^toce, an object of the present Invent' . 

ipparatus for see.r^i invention to provide a 

V ^^^"^^^y scrambling a te!evi..f«„ 



It Is a furthl/ 1 ^^rambllng a television 

^ed t ^^^^^"^ to encrypt the 

aes used to scramble a • ="t-rypr the 

that una,ifh«.,-, ^ "^^ryptioR must be distributed 
>ms. uiiaucnorispd s*ss<»i«s . 



nianner that unauthorized • • ^^stnouted in such a 

interval, bay for exama,- ,v decryption toy at ,hort 

o, r:i::.r '"-"^ - 

.uthor...d .0 that co™„„„ , ; ^ 

y oont.m.ou8ly reeei« the updated 
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decryption key. A second way of fouling unauthorized reception of the 
decryption key is to perform a secondary encryption of the decryption 
key and to Integrate the decryption key acquisition system at the 
receiver with data channel decryption in a single device which Is dif- 
ficult to copy. 

The method and apparatus for securely scrambling a television 
signal In accordance with the present Invention comprises a three-tier 
encryption technique. At the trievlslon transmitter, a distribution key 
Is used to encrypt a session key. The distribution key is unique for 
each subscriber and Is held constant for long periods of time. The 
session key, however, is changed periodically, as for example, weekly 
or monthly. The encrypted session key is then transmitted in the 
digital data channel of the television signal. The session key Is also 
used to encrypt a descramble code. The descramble code includes a 
plurality of keys which are used in the receiver to descramble or 
decrypt various signals in the receiver, such as the scrambled video 
oomponents and/or audio signals. The descramble code is &lsa changed 
periodically, e.g., four times per second in order to provide additional 
security. The encrypted descramble code is tiien transmitted in the 
data channel of the television signaL 

At the receiver » the encrypted session key is decrypted by a 
distribution key so that the session key can be used to dec- : the 
encrypted descramble code. The descramble code may then b« .sd to 
descramble or decrypt other signals in the receiver, such as the scram- 
bled video components and/or audio signals. 

In another embodiment of the present invention, a validation 
code is also transmitted in the data channel of the television signal. 
The validation code received by the receiver is compared to a locally 
derived validation code which Is developed from the decrypted session 
key. When the two validation codes match, the decrypted session key 
is permitted to decrypt the descramble code. The decrypted 
descramble code may then be used to decrypt and/or descramble other 
signals in the receiver. 
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BRIEF DESCRIPTION OF THE DRAWINGS 

Figures 1 and 2 are grai^iical representations of a line scanned 

television signal. 

Figure 3 is a bloek diafram of one embodiment of a system for 
encrypting: the code used to descrantble aitd/or decrypt the Intelligenee 
portion of a television signal in accordance with the present Invention. 

Figure 4 Is a block diagfam of one embodiment of a system for 
decrypting the cod® used to descrsmble and/or decrypt the sntelligenGe 
portion of a television signal in aeeordanee with the present invention. 

Figures 5, 6 and 7 are block diagrams of other embodiments of 
a system for decrypting the code used to descrarable and/or decrypt 
the intelligence portion of a television signal in accordance with the 
present invention. 

Figure 8 is a block diagram of one. example of a subscription 
television decoder* 

DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENTS 

Figures 3 and 4 are block diagrams of one embodiment of a 
system for scrambling television signals in accordance with the present 
invention. Figure 3 Illustrates encryption at the transmitter end and 
Figure 4 illustrates decryption at the receiver end. As shown in 
Figure 3, a session key 30 is encrypted in block 33 with a distribution 
key 32. The distribution key is unique for each subscriber and is held 
constant for long periods of time. The session key, on the other 
hand, is changed at predetermined intervals, e.f,, weekly or monthly. 
The encrypted session key is then transmitted isi the digital data 
channel of the television signal. The session key is also used to 
encrypt a deserambling code 31. The descramblmg code includes keys 
for deserambling and/or decrypting various signals in the receiver. 
These signals may include the scrambled video components of the tele- 
vision si^al, scrambled or anorypted audio signals and/or other signals 
which may require descrambilng or decryption at the receiver. The 
encrypted deserambling code is also transmitted in the digital data 
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channel of the television signal. The deserambling code may also be 
regularly updated, e.g,, four times per second, in order to provide fur- 
ther security. 

With respect to Figure 4, block 40 represents the received 
digital data channel of the television signal which includes the 
encrypted session key and the encrypted descrambling code as shown in 
Figure 3, The encrypted session key is provided to block 43 along 
with a distribution key 41. The distribution key is assigned to sub- 
scribers in return for a paid subscription to the system. The key Is 
unique to each individual subscriber, or is part of a set of keys large 
enough to prevent key swapping. Distribution key 41 may be the same 
as or derived from distribution key 32 shown In Figure 3. The 
encrypted session key Is transmitted in the data channel by the televi- 
sion transmitter individually for each distribution key 41 in use. 

Distribution key 41 Is fixed for long- periods of time and is 
maintained secret from the subscriber. One such way of maintaining 
the distribution key in confidence Is to build It inside a custom inte- 
grated circuit as indicated by reference No. 42 which also executes 
session key decryption as shown In block 43. The digital bit pattern 
of the distribution key is also made long enough to prevent its dis-» 
covery through exhaustive search, ' The encrypted session key is 
decrypted in block 43 by the distribution key and is supplied to 
block 44 along with the encrypted descrambling code from the data 
channel. The descrambling code is decrypted in block 44 by the now 
decrypted session key and is then available for descrambling or 
decrypting other signals such as the analogue color components of the 
television signal as shown in block 45, the audio portion of the televi- 
sion signal as shown In block 46 and any other signals in the receiver 
which may require descrambling or decryption as shown in block 47. 
Thus, the present invention provides three tiers of encryption and 
decryption before the scrambled or encrypted signal is returned to its 
original form. 
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Figure 5 is a further embodiment of the present Invention with 
respect to decryption at the receiver end. Similar reference numbers 
are used to identify corresponding elements shown in Fiugre 4. In this 
embodiment, the audio portion of the television signal is encrypted and 
transmitted in the data channel. The audio and descramble code are 
decrypted in block 44 using the decrypted session key from block 43 
as described above. 

A further embodiment of the present mvention with respect to 
decryption at the receiver end is shown, in Figure In this 

embodiment only one encrypted session key is transmitted to all users. 
Ail users employ the same distribution key D but its derivation for 
each subscriber is unique. The distribution key D is derived from a 
fixed key K and a subscriber code C. Block 50 represents the 
received digital data channel of the television signal which includes the 
encrypted session key and the encrypted video descramble code. The 
encrypted session key Is provided to block 54 where the fixed key K 
is maintained secret. The subscriber code C from block SI is also 
unique to the subscriber and is entered manually by the subscriber. 
The advantage of this system is that only one encrypted session key 
has to be transmitted. The sessions can, therefore, be brief. More- 
over, the distribution key D can be changed at infrequent intervals by 
updating the manual input code C. Distribution key D is derived from 
fixed key K and subscriber code C in block 32. The encrypted session 
key is thus decrypted in block 54 by the derived distribution key D 
and is supplied to block 55 along with the encrypted descrambling code 
from the data channel. The descrambling code is decrypted in block 
55 by the now decrypted session key and is then available for 
descrambling or decrypting signals in the receiver as represented by 
blocks 5S, §7 and §8, 

A further embodiment of the present Invention with respect to 
decryption at the receiver end is shown In Figyre 7« This embodiment 
eliminates the need for manual input of a code by the subscriber and 
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the existence of a common distribution key for all subsoribers. In this 
embodiment, the data channel of the signal includes the encrypted ses- 
sion key, a unique validation eode based on the decoder's address or 
serial number and the encrypted descramblingr code. The session key Is 
provided to block S2 where it is decrypted by a distribution key from 
block 61. The decrypted encryption key is then provided to Mock 84 
where a unique 32 bit internal validation cods is denved based on the 
session key and the address or serial number of the decoder. The 
derived validation code is compared to the validation code transmitted 
in the data channel and if the two match, a logic signal is provided 
to AND gate 68. AND gate 66 allows the decrypted session keys 
from block 62 to pass through to block 67 only when the derived 
internal validation code matches the validation code transmitted in the 
data channel. The session key may then be used by block 67 to 
decrypt the descrambling code. 

In the embodiment shown in Figure 7, every session is 30 
seconds In duration and within this period, every decoder decrypts the 
session key for the next session. The session key is derived within a 
custom integrated circuit as indicated by reference number 62 in 
Figure 7 which is very difficult to copy. The session key currently 
being used to decrypt the video descrambling codes in the data channel 
is also employed to derive the internal validation code. Single-bit 
error correction is applied to the received validation codes which are 
32-blts in length (sufficient to address up to 4 billion decoders). The 
session key is released from the custom IC only if an appropriate 
validation code has been received some time during the last 7 hours of 
operation on any particular television channel. 

The validation eodes Cwith error correction bits) comprise a 39 
bit word, these being transmitted in a 2S0 Kb/s ehanneL Twenty mil- 
lion receivers are thereby addressable within each S2 minute period. 
Over a period of 7 hours, each decoder will be validated on 8 
separate occasions with a single-error corrected code. With a BER of 
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10-2, failure of validation at each attempt would occur with probability 
0.044. Failure on all eight attempts would occur with a probability 
1.4 X 10-11 (MTBF 100 million years). 

The great advantage of validation codes is that (unlike session 
keys) they can be received incorrectly for much of the time without 
affecting service to the customer. Therefore they do not require 
extensive error correction. In a field of 10 million receivers, the 
address cycle time Is 26 minutes. If most decoders were operating at 
10-3 BER, then 99.95% of the decoders would be validated within the 
normal transmission time of a typical TV program. 

With the embodiment shown in Figure 7, the television receiver 
should automatically switch between commonly used channels to gather 
validation codes when in standby operation. However, standby 
operation is not a mandatory requirement provided that session counts 
(since the last validation) are stored (within the seeurs IC) in non- 
violatile memory, and that the reeeiver is operational for at least one 
continuous period of 52 minutes during each 7 hour period of use. As 
an alternative, the receiver can keep track of operational periods and 
extend the 7 hour limit to an arbitrary inaximum to ensure a 
predetermined probability of receiving a validation code. Additionally 
the receiver could issue messages (via teletext display) requesting a 
period of operation or standby mode when (according to its counters) 
only one hour of validation remains. Finally, at the end of the ? 
hour period, the receiver need not turn off the service completely, 
»•«•» stop descrambling the signal, but, instead, initiate a period of 
decreasing service, as for example, starting with several hours of 
monochrome reception. Numerous possibilities exist to encourage 
payment of subscriptions and/or operation to ensure receipt of 
validation codes. The function of the validation codes is to allow the 
receiver to 'form a view» concerning the validity of reception for each 
of the channels in use. The receiver should act intelligently to gather 
the necessary evidence for its decision, and take action only when 
sufficient evidence is at hand. 
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In the embodiment shown in Figure 7, within 10 seconds of 
being switched on (or Immediately if in standby mode) the security 
device has decrypted the session key for the next session. This key 
will not be released unless the receiver is currently validated, but 
derivation of the session key occurs independently of the validation 
process. If it were possible to break the security of the integrated 
circuit performing this function, it would become feasible to design an 
alternative circuit which did not require validation, and which released 
the session key unconditionally. 

Although security devices now exist vsfhich are extremely difficult 
to copy, a potential security risk Is apparent, and a scheme has been 
designed for its avoidance. Any device designed to deliver session 
keys, with or without validation, must make use of the distribution 
keys D (presumably acquired by breaking into one of the security 
devices). If pirate receivers are discovered which contain particular 
distribution keys, the corresponding session key encryptions may be 
excluded from the key distribution channel on condition that all other 
decoders are left with at least at one key CD) capable of decrypting 
session keys. This can be arranged by providing each decoder with 
four keys selected from the 3,000, no two decoders having the same 
set of four keys. There are 3.3 x 10^-2 ways of selecting four differ- 
ent keys from 3,000. All copies of any single decoder can be elim- 
inated by the exclusion of Its four encrypted session keys, leaving all 
others (of the 20 million) operational. If a second decoder is copied, 
all copies can be again disabled at zero cost. Up to ten decoders can 
be eliminated in. this manner. Thereafter, further exclusions will cause 
some legal decoders to become disabled. These decoders (and the 
customers who own them) can be predicted through software at the 
transmitter end. To simultaneously disable all copies of 20 different 
decoders in a field of 20 million would require replacement of only 10 
legal decoders. 
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With reference to Figure 8, a block diagram is provided showing 
one example of a decoder which can be used to implement the present 
Invention. A further example of such a decoder is described in com- 
monly assigned U.S. Patent Application Serial No. S07,S6S entitled 
"Encryption and Decryption of Video Signals" filed June 24, 1983 and 
which is incorporated herein by reference. 

As shown in Figure 8, a scrambled MAC television signal first 
enters a multiplexer 300, which separates from it the luminance and 
chrominance signals (i.e., the color components), as well as the audio, 
synchronization, timing and any teletext information. The luminance 
signal is delivered to luminance store 302, a CCD line store, where it 
is decompressed, and then to low-pass filter 304, where it is filtered. 
The analog luminance signal then goes to output interface 306. The 
sampling signals necessary to decompress luminance are produced in 
timing generator 308 and supplied to luminance store 302 by two clock 
drivers 310. 

The chrominance signal from demultiplexer 300 Is also decom- 
pressed In chrominance store 312, which Is also a CCD line store. 
Separate outputs ar© provided for the two color difference signals, 
which are filtered in two low-pass filters 314 and then supplied to 
output interface 306. The necessary sampling signals are supplied to 
chrominance store 312 from timing generator 308 through three clock 
drivers 310. 

Signals not constituting luminance or chromioanee are also 
separated from the MAC television signal by demultiplexer 300. These 
signals include audio, teletext and synchronization signals which are 
delivered to demultiplexer 316 through one of two low-pass filters 31 8| 
while the fixed-frequency timing information is delivered to 
demultiplexer 316 through band-pass filter 320. Demultiplexer 316 
separates these signals, supplying the audio to audio demultiplexer 322 
and the synchronization and timing signals to clock and synchronization 
recovery circuit 324 and timing generator 308. Audio information from 
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demultiplexer 316 is separated into four channels in audio 
demultiplexer 322 and output by analog audio processor 328. Teletext 
Information is sent to character generator 328 via clock and synchro- 
nization recovery circuitry 324. Decoder operations are under the con- 
trol of microprocessor 330, which communicates with clock and syn- 
chronization recovery circuit 324, teletext character generator 328, and 
RAM 332 over bidirectional buses 334, 336 and 338. 

Output interface 306 receives teletext characters teom character 
generator 326, luminance from low-pass filter 304, chrominance from 
low-pass filters 314, and timing signals from timing generator 308. Its 
output is a standard NTSC color television signal for display on a tele- 
vision receiver. 

The present invention has been described in detail in eonneotion 
with preferred embodiments. These embodiments, however, are merely 
examples and the invention is not restricted thereto. It will be under™ 
stood by those skilled in the art from a reading of the specification 
that variations and modifications can be made within the scope of the 
present Invention as defined by the appended claims. 
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CLAIMS 

1. An apparatus for encrypting- a code for deserambling 
and/or decrypting information, said apparatus eomprisings 

first encryption key means for proyidlng a first encryption 

key; 

second encryption key means for providing a second 
encryption key; 

first encryption means for encrypting said second 
encryption key in accordance with said first encryption keyi 

second encryption means for encrypting said code in 
accordance with said second encryption key, said encrypted second 
encryption key and said encrypted code being provided for descrambling 
and/or decrypting said information. 

2. The apparatus of claim 1 wherein said information is the 
InteUigenee portion of a television signal. 

3. The apparatus of claim 2 wherein said code includes a 
plurality of keys for descrambling and/or decrypting said intelligence 
portion of said television signal. 

4. The apparatus of claim 2 further comprising transmission 
means for transmitting said encrypted second encryption key and said 
encrypted code to a receiver which receives said television signal. 

5. The apparatus of claim 4 wherein said transmission means 
is the television transmitter which transmits said television signal. 

6. The apparatus of claim 1 wherein said code is periodically 
changed, 

7. The apparatus of claim 1 wherein said first encryption key 

is periodieally changed, 

8. An apparatus for decrypting a code for descrambling 
and/or decrypting information, wherein said code Is encrypted in 
accordance with an encrypted first encryption key, said apparatus com- 
prising: 
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decryption key means for providing a first decryption key, 
first decryption means for deerypting said encrypted 

encryption key in accordance with said decryption key; 

second decryption means for decrypting said code in 

accordance with said encryption key for descrambling and/or decrypting 

said information. 

9. The apparatus of claim 8 wherein said information is the 
intelligence portion of a television signal. 

10. The apparatus of claim 9 wherein said code includes a 
plurality of keys for descrambling and/or decrypting said intelligence 
portion of said television signal. 

11. A system for encrypting a code for descrambling and/or 
decrypting information and for decrypting said code, said system com- 
prising: 

first encryption key means for ppovfdirtf a first encryption 

keyj 

second encryption key means for prov^idfng- a second 
encryption key? 

first encryption msans for encrypting said second 
encryption key In aecortlsne© with said first encryption key? 

second encryption means for encrypting said code in 
accordance with said second encryption keyi 

first decryption key means for providing a first decryption 

key; 

first decryption means for decrypting said encrypted second 
encryption key in accordance with said first decryption key; 

second decryption means for decrypting said code in 
accordance with said second decryption key for descrambling and/or 
decrypting said information. 

12. The apparatus of claim 11 wherein said information is the 
intelligence portion of a television signal. 
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13. The apparatus of claim 12 wherein said code includes a 
plurality of keys for deserambling and/or decrypting said intelligence 
portion of said television signal. 

14. The apparatus of elaim 12 further eompmlng transmission 
means for transmitting said encrypted second encryption key and said 
encrypted code to a receiver which receives said television signal, 

15. The apparatus of claim 14 wherein said transmission means 
is the television transmitter which transmits said television signal. 

16. The apparatus of claim 11 wherein said code is 
periodically changed. 

17. The apparatus of claim 11 wherein said first encryption 
key is periodically changed. 

18. A method for encrypting a code for descrambling and/or 
decrypting information, said method comprising the steps oft 

providing a first encryption key, 
providing a second encryption key; 

encrypting said second encryption key in accordance with 
said first encryption key, and 

encrypting said code in accordance with said second 
encryption key, said encrypted second encryption key and said 
encrypted code being provided for descrambling and/or decrypting said 
in/ormation. 

19. The method of claim 18 further including the step of 
transmitting said encrypted second encryption key and said encrypted 
code to a receiver which receives said television signal, 

20. The. method of ciaim 18 further including the step of 
periodically changing said code, 

21. The method of claim IS further including the step of 
periodically changing said first encryption key. 

22. A method for decrypting a cods for descrambling and/or 
decrypting information, wherein said code is encrypted In accordance 
with an encrypted first encryption key, said method eomprising the 
steps ofj 
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providing- a decryption key? 
the steps of; * method comprising 

2C The method of claim 23 wherein said step of providing « 



wo 86/07224 



- 19 » 



PCT/US86/00801 



25. The method of claim 1 wherein the step of providing a 
distribution key at said receiver includes the step of deriving said 
distribution key from said second encryption key. 

26. The method of claim 23 wherein said step of providing at 
least one session key includes the step of providing a unique session 
key for each of said receivers which receive said television signal. 

27. The method of claim 4 wherein the step of providing a 
distribution key includes the step of providing a distribution key for 
each of said unique session key. 

28. The method of claim 1 wherein said session key and said 
distribution key are changed periodically. 

29. A method for scrambling and unscrambling a line-scanned 
television signal of the type wherein in each line there is a first 
period during which video information is present and a second period 
during which no video information is present, said method comprising 
the steps of: 

soramblmg said video information in accordance with video 
scrambling codes? 

providing video descrambiing codes for descrambling said 
scrambled video information? 

encrypting said video deseramfollRf codes In accordanea 
with a first enerj^tlon key? 

providing a session key for decrypting said encrypted video 
descrambling codes; 

encrypting said session key In accordance with a . second 
encryption key; 

including said encrypted video descrambling codes and said 
encrypted session key in said television, during said second period during 
which no video information is present; and 

providing a subscriber code and a fixed key at the 
receiver which receives said television signal, said subscriber code and 
said fixed key being used to derive a distribution key, said distribution 
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key being used to decrypt said encrypted session key, said decrypted 
session key being used to decrypt said encrypted video descrarable 
Qodes, said decrypted video deseramble codes being used to descramble 
said scrambled video information. 

30. The method of claim 29 wherein said step of providing a 
session key includes the step of deriving said sesalon key from said 
first encryption key. 

31. The method of claim 2§ wherein said session key Is 
periodiGally. 

32. The method of claim 29 wherein the step of providing a 
riber code and a fixed key includes the step of providing a unique 
Tiber code for each of said receivers whi( 



33. A 

television signal of the type wherein in each line there Is a first 
period during which video information is present and a second period 
during which no video Information is present, said method comprising 
the steps oft 

video information in accordance with 




with a first encryption key; 

providing a plurality of validation codes, each of said plu- 
rality of validation codes being unique for each of said receivers which 



encrypting said session key in accordance with a second 

encryption keyi 

transmitting said encrypted video descrarabling codes, said 
encrypted session key and said plurality of validation codes during said 
second period in said television signal during which no video 

information is present? and 
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providing a distribution key at the receiver which receives 
said television signal, said distribution itey being provided to decrypt 
said enerypted session key, said decrypted session key being used to 
defive an internal validation code within each of said receivers, said 
Internally derived validation code being compared with said plurality of 
validation codes, said comparator providing a logic signal indication 
when a match is founds said logic signal enaWing logic means to 
permit said decrypted session key to decrypt said enerypted video 
deseramble codes, said decrypted video descmmble codes being used to 
descramble said scrambled video information. 

34. The method of claim 33 wherein said step of providing a 
session key for decrypting said encrypted video deserarabling codes 
includes the step of deriving said session key from said first encryption 
key. 

35, The method of claim 33 wherein the step of providing a 
distribution key at said receiver Includes the step of deriving said 
distribution key from said encryption key. 

38. The method of claim 33 wherein the step of providing a 
distribution key at the receiver includes the step of providing a 
distribution key which matches said unique session key for each of said 

37. The method of daira 33 wherein said session key and said 
distribution keys are changed periodically. 
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